MINI-424M-3459-392P

Bulletin has no description...

CVE-2026-3459

creationtimestamp| type| source ---|---|--- 2026-03-05 19:17:35+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mgdj6ysakh2s...

CVE-2026-3459

The Drag and Drop Multiple File Upload - Contact Form 7 plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type validation in the 'dnduploadcf7upload' function in versions up to, and including, 1.3.7.3. This makes it possible for unauthenticated attackers to...

MiracleLinux 7 : rh-mysql56-mysql-5.6.32-1.el7 (AXSA:2016-615:02)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2016-615:02 advisory. MySQL is a multi-user, multi-threaded SQL database server. MySQL is a client/server implementation consisting of a server daemon mysqld and many...

EUVD-2014-3459

Malware in sbrugna...

CVE-2025-3459

The Quantenna Wi-Fi chipset ships with a local control script, transmitfile, that is vulnerable to command injection. This is an instance of CWE-88, "Improper Neutralization of Argument Delimiters in a Command 'Argument Injection'," and is estimated as a CVSS 7.7...

CVE-2025-3459

The Quantenna Wi-Fi chipset ships with a local control script, transmitfile, that is vulnerable to command injection. This is an instance of CWE-88, "Improper Neutralization of Argument Delimiters in a Command 'Argument Injection'," and is estimated as a CVSS 7.7...

CVE-2025-3459 ON Semiconductor Quantenna transmit_file Argument Injection

The Quantenna Wi-Fi chipset ships with a local control script, transmitfile, that is vulnerable to command injection. This is an instance of CWE-88, "Improper Neutralization of Argument Delimiters in a Command 'Argument Injection'," and is estimated as a CVSS 7.7...

CVE-2025-3459 ON Semiconductor Quantenna transmit_file Argument Injection

The Quantenna Wi-Fi chipset ships with a local control script, transmitfile, that is vulnerable to command injection. This is an instance of CWE-88, "Improper Neutralization of Argument Delimiters in a Command 'Argument Injection'," and is estimated as a CVSS 7.7...

CVE-2025-3459

The CVE refers to the Quantenna Wi‑Fi chipset where the local control script transmit_file is vulnerable to command injection (CWE-88). Affected products include Quantenna Wi‑Fi chipset up to version 8.0.0.28 of the latest SDK. The issue is described with CVSS 7.7–7.8 metrics (LOCAL attacker, low...

CVE-2021-3459

A privilege escalation vulnerability was reported in the MM1000 device configuration web server, which could allow privileged shell access and/or arbitrary privileged commands to be executed on the adapter...

Linux Distros Unpatched Vulnerability : CVE-2019-3459

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A heap address information leak while using L2CAPGETCONFOPT was discovered in the Linux kernel before 5.1-rc1. CVE-2019-3459 Note that Nessus relies on the...

CVE-2024-3459

creationtimestamp| type| source ---|---|--- 2025-02-12 03:08:01+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/3986 2025-02-12 04:08:42+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/4002 2025-02-14 10:04:02+00:00| seen| Telegram/PPuDhsQ92s3IrjtpmUSRiMeroVDLEMQsWzkj9UlgEAiQQxOw...

openSUSE: Security Advisory for kubernetes1.24 (SUSE-SU-2024:3459-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2024:3459-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

WordPress WooCommerce Multiple Free Gift Plugin <= 1.2.3 is vulnerable to Bypass Vulnerability

Software WooCommerce Multiple Free Gift Type Plugin Vulnerable versions = 1.2.3 Fixed in N/A OWASP Top 10 A4: Insecure Design Classification Bypass Vulnerability CVE CVE-2022-3459 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 4aced825e176 Credits Danielius Vargonas...

CVE-2022-3459

creationtimestamp| type| source ---|---|--- 2024-09-14 05:40:26+00:00| seen| https://t.me/cvedetector/5665...

CVE-2024-3459

KioWare for Windows versions all through 8.34 allows to escape the environment by downloading PDF files, which then by default are opened in an external PDF viewer. By using built-in functions of that viewer it is possible to launch a web browser, search through local files and, subsequently,...

CVE-2023-3459

creationtimestamp| type| source ---|---|--- 2023-07-18 07:25:58+00:00| seen| https://t.me/cibsecurity/66881...

CVE-2023-3459

CVE-2023-3459 affects the WordPress plugin “Export and Import Users and Customers.” Vulnerable through version 2.4.1 due to a missing capability check on the hf_update_customer function invoked via AJAX. This allows an authenticated attacker with shop-manager permissions to modify user data (e.g....